Criteria | Azure | Knowledge Base

azure
Unrestricted access between network segments - Azure
Need Implementation of network segmentation and access controls Context Usage of Terraform for Infrastructure as Code (IaC) Usage of azurerm for managing resources in Azure Description Non compliant code provider "azurerm" { features {} } resource ...
Use of an insecure channel - HTTP - Azure
Need Secure communication channel for client information transmission Context Usage of Terraform 0.12 for Infrastructure as Code (IaC) Usage of AzureRM for managing Azure resources programmatically Description Non compliant code provider "azurerm" { ...
Authentication mechanism absence or evasion - Azure - Azure
Need Implementation of robust and secure authentication mechanisms in Azure Context Usage of Terraform for Infrastructure as Code (IaC) Usage of Azure Resource Manager (azurerm) for managing Azure resources Description Non compliant code provider ...
Business information leak - Azure - Azure
Need Protection of customer data and prevention of unauthorized access Context Usage of Terraform for Infrastructure as Code (IaC) Usage of AzureRM for managing Azure resources programmatically Description Non compliant code provider "azurerm" { ...
Traceability Loss - Azure - Azure
Need Improved traceability and logging in Azure configurations Context Usage of Terraform for Infrastructure as Code (IaC) Usage of Azure Resource Manager (azurerm) for managing Azure resources Description Non compliant code provider "azurerm" { ...
Unrestricted access between network segments - Azure AD - Azure
Need Restrict access to Azure Active Directory Graph API services to authorized network segments Context Usage of Terraform for Infrastructure as Code (IaC) Usage of azurerm for managing resources in Microsoft Azure Usage of Azure AD for ...
Insecure service configuration - AKV Secret Expiration - Azure
Need Enforce expiration dates for secrets stored in Azure Key Vault Context Usage of Terraform for Infrastructure as Code (IaC) Usage of AzureRM for managing Azure resources Description Non compliant code provider "azurerm" { features {} } resource ...
Insecure encryption algorithm - SSL/TLS - Azure
Need Implementation of secure encryption algorithms for SSL/TLS communication Context Usage of Terraform for Infrastructure as Code (IaC) Usage of azurerm for managing Azure resources and services Description Non compliant code provider "azurerm" { ...
Lack of protection against deletion - Azure Key Vault - Azure
Need Implementation of safeguards for accidental or malicious deletion of secrets in Azure Key Vault Context Usage of Terraform for Infrastructure as Code (IaC) Usage of azurerm for managing resources in Microsoft Azure Usage of the "var" keyword for ...
Lack of protection against deletion - Azure
Need Protection against accidental deletion of critical objects Context Usage of Terraform for Infrastructure as Code (IaC) Usage of Azure Resource Manager (azurerm) for managing Azure resources Description Non compliant code provider "azurerm" { ...
Insecure authentication method - Basic - Azure
Need Secure authentication method Context Usage of Terraform for Infrastructure as Code (IaC) Usage of azurerm for managing resources in Azure Description Non compliant code provider "azurerm" { features {} subscription_id = "your_subscription_id" ...

Criteria | Azure | Knowledge Base

azure

Unrestricted access between network segments - Azure

Use of an insecure channel - HTTP - Azure

Authentication mechanism absence or evasion - Azure - Azure

Business information leak - Azure - Azure

Traceability Loss - Azure - Azure

Unrestricted access between network segments - Azure AD - Azure

Insecure service configuration - AKV Secret Expiration - Azure

Insecure encryption algorithm - SSL/TLS - Azure

Lack of protection against deletion - Azure Key Vault - Azure

Lack of protection against deletion - Azure

Insecure authentication method - Basic - Azure